Project

General

Profile

Actions
Copy link

Bug #20210

closed

fe_login: Forgot Password should not send passwords if they are hashed (md5)

Added by Nabil Sayegh about 15 years ago. Updated over 12 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2009-03-19
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.2
PHP Version:
5.2
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

With md5 passwords it's impossible to send the user the cleartext password.
I suggest a "reset password" functionality instead.

Later I'll add a patch that implementes this.
(issue imported from #M10729)

Related issues 3 (0 open3 closed)

Related to TYPO3 Core - Feature #20209: fe_users.email should be unique if "forgot password" is used in fe_loginClosed2009-03-19

Actions
Related to TYPO3 Core - Bug #22449: reset of feuser password fails when using 'Forgot your password' form with typo3 v4.3.x + ' felogin ' + ' kb_md5fepw 'Closed2010-04-14

Actions
Is duplicate of TYPO3 Core - Feature #19489: Conf option for forgoten password and md5Closed2008-10-22

Actions
Actions
Copy link
 #1

Updated by Nabil Sayegh about 15 years ago

kb_md5fepw works fine with recent typo3 4.2.6 and php5 and supports password resetting. However, you have to override the dependencies when installing it.

Actions
Copy link
 #2

Updated by Steffen Gebert almost 14 years ago

The felogin version shipped with TYPO3 4.3 doesn't send new passwords, but creates a link to reset the password. This IIRC also works with saltedpasswords.

So I think this is fixed - do you agree?

Actions
Copy link
 #3

Updated by Chris topher almost 14 years ago

Duplicate of #19489.

Actions
Copy link
 #4

Updated by Susanne Moog over 12 years ago

  • Category deleted (Communication)
  • Status changed from Needs Feedback to Closed
  • Target version deleted (0)
Actions
Copy link

Also available in: Atom PDF